Ensure comment is always a valid key (#8604)

Also fix LDAP leaky connection
2025-11-09 13:39:46 -05:00 · 2019-12-05 04:47:42 -08:00
parent c9940d8c3f
commit d8e3de0cae
3 changed files with 59 additions and 36 deletions
--- a/cmd/sts-handlers.go
+++ b/cmd/sts-handlers.go
@@ -484,6 +484,9 @@ func (sts *stsAPIHandlers) AssumeRoleWithLDAPIdentity(w http.ResponseWriter, r *
 		return
 	}

+	// Close ldap connection to avoid leaks.
+	defer ldapConn.Close()
+
 	usernameSubs, _ := xldap.NewSubstituter("username", ldapUsername)
 	// We ignore error below as we already validated the username
 	// format string at startup.